ScanMalware.com

Security Scan Report: www.state.gov

Site favicon
Submitted: Oct 26, 2025, 6:52:43 PMCompleted: Oct 26, 2025, 6:54:04 PMpubliccompleted
Loading additional data...

Summary

This website contacted 74 IPs in 2 countries across 18 domains to perform 112 HTTP transactions. The main domain is state.gov and was registered NaN years ago.

Submitted URL: https://www.state.gov/

AI Security Verdict

High Risk

Confidence: 85%

6
Risk Score

Suspicious credential‑harvesting page on state.gov, likely a phishing attempt.

Risk Factors
Credential harvesting via hidden password input
Password field without username field enables credential collection
Feedback form masquerading as a legitimate site feature
Domain age information unavailable

Details

Page Title

Technical Difficulties

Scan Type

public

Language

🇺🇸

English

(80% confidence)

Category

documentation technical

(53%)

Domain Information

Within the United States government-restricted top-level domain (.gov), 'www.state.gov' is registered with subdomain 'www'. The second-level label 'state' is 5 characters long split between 2 vowels and three consonants. Word splitting yields one word: state. The median word length lands at five characters. The linguistic tilt is Italian for 'state'. It also appears in English and Chinese (Pinyin) contexts. Net impression: Italian phrase with single-word simplicity.

Screenshot

Security scan screenshot of https://www.state.gov/

Page Load Overview

30.61s
Total Load Time
112
HTTP Requests
18
Domains
3.0 MB
Total Size

Language Analysis

Primary Language

🇺🇸English
Code: en
Confidence:80%
Script:Latin
Direction:ltr

Detection Details

Language Code:en
Detection Confidence:80%
Script Type:Latin
HTML Lang Attribute:en
Text Length:12,092 chars
Detector Agreement:100%

Website Classification

Primary Category

documentation technical53% confidence
Type: spa
Method: ml+structural

All Detected Categories

documentation technical
53%
government
48%
government public service
42%
technology software
35%
forum
25%

Detected Features

Search
Articles
Comments
OG: website

Domain & IP Information

RequestsIP AddressLocationAS Autonomous System
3918.245.86.87United States
AS16509AMAZON-02
13.210.124.86Ashburn, Virginia, United States
AS14618AMAZON-AES
123.201.242.44Frankfurt am Main, Hesse, Germany
AS16625AKAMAI-AS
13.174.46.105United States
AS16509AMAZON-02
118.245.86.90United States
AS16509AMAZON-02
1216.239.32.36United States
AS15169GOOGLE
1142.250.186.35United States
AS15169GOOGLE
1151.101.130.137San Francisco, California, United States
AS54113FASTLY
1146.75.122.27Frankfurt am Main, Hesse, Germany
AS54113FASTLY
118.245.86.109United States
AS16509AMAZON-02
11274--

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

Security-focused

Specialized for malware detection and similarity analysis

T13514F7B3958C017F4A2BC3CF7068B36DA0AF4437DD1624E2F5F3821D1686ED5265EA29

ssdeep (Context Triggered Piecewise Hashing)

Context-aware

Detects similar content even with modifications

3072:jXJoEDFsTVBi8je2Q8nJ9E3XlY1PPD/NsuMG:z0jXJ9E3S

sdhash (Similarity Digest Hashing)

High-precision

High-precision similarity detection for forensic analysis

sdhash:3:200776:kAQCkOEBwH2AskaEUGAgBw0MMkxCaCAJeYukLheIFIFQyF7BAirsRGwIBGBDOOAPGIhAGghiCAAJBCCBA4C6AAWJCCHBQE44

These hashes enable detection of similar websites and malware variants by comparing content similarity even when exact matches aren't found.

Image Hashes

Perceptual Hashes

Average Hash:ff0000181800fcff
Perceptual Hash:9825f25a8ddb25d2
Difference Hash:c5d5daf3f3f10901
Wavelet Hash:ff00023f1808fcff
Color Hash:#c58787

Other Hashes

Crop Resistant:c5d5daf3f3f10901,60a0b0b0f0f8f878,8c8cb28e727a7e86,c5959af2f3f3d929

Scan History

Scan history not available

Unable to load historical scan data